Irish cyber security researcher reveals flaw at major IT services firm ServiceNow 

One of the world’s biggest IT services and helpdesk companies has amended its systems after a Dublin IT security researcher found that confidential information was being exposed. 

Source: https://www.independent.ie/business/technology/irish-cyber-security-researcher-reveals-flaw-at-major-it-services-firm-servicenow/a1380281334.html 

AT&T pays $13 million FCC settlement over 2023 data breach 

The Federal Communications Commission (FCC) has reached a $13 million settlement with AT&T to resolve a probe into whether the telecom giant failed to protect customer data after a vendor’s cloud environment was breached three years ago. 

Source: https://www.bleepingcomputer.com/news/security/atandt-pays-13-million-fcc-settlement-over-2023-data-breach/  

23andMe pledges $30 million to the 6.4 million people affected by data breach 

Genetic testing giant 23andMe will pay $30 million to more than six million people affected by a data breach that occurred in October 2023. The company settled dozens of lawsuits that arose from an incident where a hacker used stolen usernames and passwords to login and view troves of account information, including health data.   

Source: https://therecord.media/dna-pledges-millions-to-data-breach  

Malware locks browser in kiosk mode to steal Google credentials 

A malware campaign uses the unusual method of locking users in their browser’s kiosk mode to annoy them into entering their Google credentials, which are then stolen by information-stealing malware. 

Source: https://www.bleepingcomputer.com/news/security/malware-locks-browser-in-kiosk-mode-to-steal-google-credentials/  

‘Void Banshee’ Exploits Second Microsoft Zero-Day 

Microsoft has recategorized a bug that the company fixed in this month’s Patch Tuesday update as a zero-day vulnerability, which the “Void Banshee” advanced persistent threat group has been exploiting since before July. 

Source: https://www.darkreading.com/application-security/void-banshee-exploits-second-microsoft-zero-day  

‘CloudImposer’ Flaw in Google Cloud Affected Millions of Servers 

Google has patched a flaw in its Google Cloud Platform (GCP) that attackers could have exploited to execute a supply chain attack on millions of customer cloud servers, simply by deploying a single malicious code package. 

Source: https://www.darkreading.com/cloud-security/cloudimposer-flaw-google-cloud-affected-millions-servers  

Ransomware gangs now abuse Microsoft Azure tool for data theft 

Ransomware gangs like BianLian and Rhysida increasingly use Microsoft’s Azure Storage Explorer and AzCopy to steal data from breached networks and store it in Azure Blob storage. 

Source: https://www.bleepingcomputer.com/news/security/ransomware-gangs-now-abuse-microsoft-azure-tool-for-data-theft/  

As Geopolitical Tensions Mount, Iran’s Cyber Operations Grow 

In its latest cyberattack on a Middle Eastern nation using its proxies in cyberspace, Iran continues to ramp up its cyber operations against rivals and allies. 

Source: https://www.darkreading.com/cyberattacks-data-breaches/geopolitical-tensions-mount-iran-cyber-operations-grow  

Zero-Click RCE Bug in macOS Calendar Exposes iCloud Data 

A zero-click chain of critical-, medium-, and low-severity vulnerabilities in macOS could have allowed attackers to undermine macOS’s brand name security protections and ultimately compromise victims’ iCloud data. 

Source: https://www.darkreading.com/vulnerabilities-threats/zero-click-rce-bug-macos-calendar-exposes-icloud-data  

‘Marko Polo’ Creates Globe-Spanning Cybercrime Juggernaut 

The Marko Polo cybercrime gang represents a growing, global financial threat, steering at least 30 ongoing fraud campaigns at the same time and wielding an arsenal of sophisticated malware that has compromised tens of thousands of devices so far. 

Source: https://www.darkreading.com/threat-intelligence/marko-polo-globe-spanning-cybercrime-juggernaut  

Smarttech247